Skip to content

Add Circom not-so-smart-contracts#427

Open
omarinuwa wants to merge 4 commits into
crytic:masterfrom
omarinuwa:add-circom-vulnerabilities
Open

Add Circom not-so-smart-contracts#427
omarinuwa wants to merge 4 commits into
crytic:masterfrom
omarinuwa:add-circom-vulnerabilities

Conversation

@omarinuwa
Copy link
Copy Markdown
Contributor

@omarinuwa omarinuwa commented Feb 20, 2026
edited
Loading

Summary

  • Adds 5 Circom-specific vulnerability entries covering the most common ZK circuit pitfalls found in security audits
  • New entries: Unconstrained Signal Assignments, Field Overflow Aliasing, Unconstrained Component Outputs, Missing Input Constraints, Unsafe Arithmetic Edge Cases
  • Includes index README and navigation updates (SUMMARY.md, root README, not-so-smart-contracts README)

Why a standalone section?

Circom is placed as its own platform section (like Cairo, Solana, etc.) rather than under the existing Cryptography section. Circom has enough language-specific pitfalls — <-- vs <== assignment semantics, the R1CS constraint model, assert not producing constraints, and circomlib component output/input patterns — to warrant standalone treatment. This is similar to how Cairo has its own section despite being related to the EVM.

The existing Cryptography entry "Underconstrained ZK Circuits" covers the general concept at a protocol level. These Circom entries cover the DSL-specific ways developers accidentally produce underconstrained circuits.

Entries

Vulnerability Description
Unconstrained Signal Assignments <-- and assert do not produce R1CS constraints, leaving signals prover-controlled
Field Overflow Aliasing Full-field-width bit decompositions allow aliased values to bypass range checks
Unconstrained Component Outputs Comparison component outputs computed but never constrained to expected values
Missing Input Constraints Templates assume boolean or range properties on inputs without enforcing them
Unsafe Arithmetic Edge Cases Division by zero, modular inverse semantics, and signed comparison pitfalls

Test plan

  • Verify all internal links resolve correctly
  • Confirm entries follow the standard format (H1 title, description, H2 Example, H2 Mitigations)
  • Review Circom code examples for technical accuracy

🤖 Generated with Claude Code

omarinuwa and others added 2 commits February 19, 2026 14:53
@omarinuwa @claude
Add cryptography not-so-smart-contracts section with 8 vulnerability …
6cee76b 
…entries

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@omarinuwa @claude
Add Circom not-so-smart-contracts section with 5 vulnerability entries
01bdef6 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@CLAassistant
Copy link
Copy Markdown

CLAassistant commented Feb 20, 2026

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

omarinuwa and others added 2 commits February 20, 2026 19:57
@omarinuwa @claude
Fix review issues: remove crypto overlap, add section headers, clean …
2802d0a 
…code

- Remove cryptography section (belongs to PR crytic#425)
- Add ## Description and ## Exploit Scenario sections to all Circom entries
- Add one-line summaries after H1 titles
- Remove large fixed code blocks exceeding 2-5 line limit
- Remove forbidden // FIX: labels from code blocks
- Expand missing_input_constraints code to meet 10-line minimum

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@omarinuwa @claude
Fix ecosystem README: title format, extra bullet, bold credits
e697378 
- Change title from em dash to parentheses format
- Remove extra 4th bullet from Features section
- Add bold to Trail of Bits in Credits

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@anishnaik anishnaik Awaiting requested review from anishnaik anishnaik is a code owner

@bsamuels453 bsamuels453 Awaiting requested review from bsamuels453 bsamuels453 is a code owner

@Jaime-Iglesias Jaime-Iglesias Awaiting requested review from Jaime-Iglesias Jaime-Iglesias is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@omarinuwa @CLAassistant